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Sir/Madam: 

Further to the Notice dated September 11, 2006, Appellants present this Appeal 
Brief. Appellants respectfully request that this appeal be considered by the Board of 
Patent Appeals and Interferences. 
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I. REAL PARTY IN INTEREST 

As evidenced by the assignment recorded at Reel/Frame 012911/0113, the subject 
application is owned by OpenTV, Inc., a corporation organized and existing under and by 
virtue of the laws of the State of Delaware, and now having its principal place of business 
at 275 Sacramento Street, San Francisco, CA 94111. 
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II. RELATED APPEALS AND INTERFERENCES 

No other appeals, interferences or judicial proceedings are known which would be 
related to, directly affect or be directly affected by or have a bearing on the Board's 
decision in this appeal. 
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III. STATUS OF CLAIMS 

Claims 1-11 are pending and rejected, and are the subject of this appeal. A copy 
of claims 1-1 1 as on appeal is included in the Claims Appendix hereto. 
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IV. STATUS OF AMENDMEMNTS 

No amendments to the claims have been submitted subsequent to the final 
rejection. 
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V. SUMMARY OF CLAIMED SUBJECT MATTER 



The subject matter of the present claims generally relates to the field of security in 
interactive television systems. 

Claim 1 recites a system for authenticating a PIN code of a user in order to run an 
application. The system includes an input device for entering a PIN code of a user, a 
security manager, and an application desired to be run by the user, (e.g., see figure 3 and 
description beginning page 6, wherein a system 10 is shown to include an input device 
15, security manager 13, application 11, and display 17). In the method of claim 1, the 
application desired to be run is configured to present a PIN entry field. The security 
manager is configured to receive a request for user authentication from the application; 
compare a received PIN code of the user with a registered PIN code, in response to said 
request; supply information to the application about PIN code entering key-pressing 
operations by the user, wherein the entered PIN code is not supplied to the application; 
and give authorization to run said application if the PIN code of the user matches the 
registered PIN code, (e.g., see figures 5 and 6, and related description). 

Claim 4 recites a method for authenticating a PIN code of a user in an interactive 
system in order to run an application, (e.g., see figure 5 and related description). The 
method of claim 4 recites receiving a request from a user to run the application and the 
application presenting a PIN entry field (41) in response to the request. The method of 
claim 4 further recites a security manager: receiving a request for user authentication 
from the application; supplying information to the application about PIN code entering 
key-pressing operations by the user, wherein the entered PIN code is not supplied to the 
application; comparing an entered PIN code of the user with a registered PIN code; and 
giving authorization to run the application if the PIN code of the user matches the 
registered PIN code, (e.g., see page 5). In addition, the application of claim 4 is 
configured to present in the PIN entry field crypted information corresponding to the 
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information about PIN code entering key-pressing operations received from the security 
manager. 

Claim 9 recites a computer readable medium comprising executable instructions. 
The instructions are generally executable to perform the method recited in claim 4. See 
the discussion above regarding claim 4 for a summary regarding the recited features. 
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VI. GROUNDS OF REJECTION TO BE REVIEWED ON APPEAL 

1. Claims 1-11 stand finally rejected under 35 U.S.C. § 103(a) as being unpatentable 
over U.S. Patent No. 6,338,138 (hereinafter "Raduchel"), in view of U.S. Patent No. 
6,122,741 (hereinafter "Patterson"). 
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VII. ARGUMENT 

Claims 1-11 stand finally rejected under 35 U.S.C. § 103(a) as being unpatentable 
over U.S. Patent No. 6,338,138 (hereinafter "Raduchel"), in view of U.S. Patent No. 
6,122,741 (hereinafter "Patterson"). Appellants traverse these rejections for the 
following reasons. 

Preface 

By way of preface, a brief description of the presently claimed invention is first 
provided. Applicant's presently claimed invention is generally directed to a system and 
method for authenticating a user in order to run an application. More particularly, the 
claimed invention addresses requirements for security which are contradictory. For 
example, in order to run an application, an authentication of the user is needed (e.g., 
using a PIN). It is desired that such authentication be controlled/presented by the 
application so that, for example, it may have the look and feel of the application. 
However, it is also preferred that the PIN code should not be given to the application for 
security purpose. 

Generally, two types of solutions are known for authentication in the prior art. 
Both present drawbacks, as they are only capable of fulfilling part of the above 
requirements. In a first case, the application presents its own user interface for PIN entry, 
receives input, and queries the underlying system to check if the given PIN is correct. 
However, this solution does not hide the PIN code from the application. In a second case, 
the application requests the underlying system to authenticate the viewer. For this, the 
underlying system, using its own look and feel, prompts the viewer for its PIN, verifies 
its validity, and then returns information that the viewer is or is not authorized. This 
solution may be safer in the sense that the PIN is not provided to the application, but does 
not allow integration of the PIN entry with the application look and feel. 
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The presently claimed invention addresses these problems by having the 
application control presentation of a PIN interface. The application requests user 
authentication from a security manager. The security manager receives a user's entry and 
performs authentication. However, as the application does not receive the entered PIN 
information, the application has no feedback to provide a user who is inputting a PIN. 
Therefore, the security manager is configured to provide the application with information 
concerning key pressing operations of the user - without providing the PIN - so that the 
application can provide feedback to the user concerning their input. As presently claimed, 
the application presents crypted information in a PIN entry field corresponding to key 
pressing operations. 



Claims 1, 4, and 9 



Turning now the claims, claim 1 recites: 



"a system for authenticating a PIN code of a user in an interactive information 
system in order to run an application, the system comprising: 
an input device for entering a PIN code of a user; 
a security manager configured to: 

receive a request for user authentication from the application; 
compare a received PIN code of the user with a registered PIN code, in 

response to said request; 
supply information to the application about PIN code entering key- 
pressing operations by the user, wherein the entered PIN code is not 
supplied to the application; and 
give authorization to run said application if the PIN code of the user 
matches the registered PIN code; 
wherein the application is configured to present a PIN entry field, wherein crypted 
information corresponding to said information about PIN code entering 
key-pressing operations received from the security manager is displayed in 
the PIN entry field." 



In the above claim, it is first noted that the security manager is configured to 
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"receive a request for user authentication from the application." The recitation "the 
application" has antecedent basis in the earlier recited "system for authenticating a PIN 
code of a user in an interactive information system in order to run an application ." Claim 
1 also recites authorization is given to run said application. In other words, it is the very 
application that a user seeks to run which provides the request for user authentication to 
the security manager. In addition to providing the request for user authentication, it is this 
same application which is "configured to present a PIN entry field." These features are in 
accord with the above discussion which describes the application controlling presentation 
of the PIN interface. 

In the Final Office Action dated April 20, 2006, the examiner suggests Raduchel 
discloses the features: 



"a security manager configured to: 

receive a request for user authentication from the application; 

compare a received PIN code of the user with a registered PIN code, in 
response to said request; 

supply information to the application about PIN code entering key- 
pressing operations by the user, wherein the entered PIN code is not 
supplied to the application" 

In particular, the examiner cites the following disclosure of Raduchel: 



"FIG. 2 depicts a flow chart of the steps performed during login to the 
local computer depicted in FIG. 1" 

"When the local computer is initially started, a small portion of the 
operating system is loaded (step 202). In this step, the minimum code 
necessary to run authentication is loaded, including VM 117 as well as 
the minimum components of the operating system necessary to load 
and run a web browser; it does not include a command interpreter or 
file capabilities. 

Next, the browser is loaded and run (step 204). As shown in FIG. 3, 
when running the browser, the user is initially presented with a screen 
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300 having a login dialog box 302 into which the user can enter their 
usemame and password. This screen is displayed by an applet, stored 
with the browser, that performs authentication by communicating with 
the authentication manager. ... the authentication information, 
including the usemame and password, is sent by the browser to the 
authentication manager 

The authentication manager receives the log-in information and uses it 
to authenticate the user . . . and returns a token that identifies the 
services that the user may use (step 406). Additionally, this token may 
contain a profile of the user's access rights, and when the token is 
returned to the local computer, it would be included in all further 
requests from the local computer. 

Returning to FIG. 2, the local computer receives the authentication 
results from the authentication manager and determines if the user was 
authenticated (step 208). If authentication fails ... the user is allowed 
only to perform actions considered non-invasive, such as sending and 
receiving e-mail, viewing publicly available, non-proprietary web 
pages via the browser, or viewing on-line calendars. However, if 
authentication is successful, the user may use all of the available 
services of the local computer. . . . 

If authentication fails, the browser provides the user with restricted 
access to the local computer (step 210). In this step, the browser 
displays icons representative of the services that the user may use, as 
indicated in the token received from the authentication manager. For 
example, FIG. 5 depicts the browser screen 300 with three icons: icon 
502, allowing the user to access an e-mail system; icon 504, allowing 
the user to use a time management program; and icon 506, allowing 
the user to browse various web pages on the Internet. Upon selecting 
one of the icons 502-506 for the first time, the browser sends a request 
to the authentication manager for the appropriate service applet, and 
the authentication manager downloads it to the browser so that the 
user may use the corresponding service. Subsequent selections of the 
icon do not cause a download of the service applet; instead, 
recognizing that a copy has already been downloaded, the browser 
merely invokes that copy." (Raduchel, col. 4, line 58 - col. 5, line 62). 

The examiner states (page 3 of Final Office Action) that the claimed "application" 
is "broad enough to read on the browser or any of the services that the user seeks to 
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access." However, Applicant disagrees. 

First, as a general matter, it can be seen that Raduchel merely discloses a computer 
log-on procedure which returns a token that identifies the services that the user may use. 
The web browser may then display an icon for the services the user has permission to use 
(i.e., has already be authenticated to use). 

Second, it is noted that claim 1 recites " the application is configured to present a 
PIN entry field." This clearly eliminates the services/icons of Raduchel as being equivalent 
to the application. Only the browser of Raduchel is disclosed as presenting a "login dialog 
box". Further, as clearly disclosed by Raduchel, the services that are approved have in fact 
already been approved. Accordingly, should a user select one of the service icons, there is 
no authentication procedure performed to see if the user may run the service. 

Third, it is noted that it is the browser of Raduchel which receives and sends the 
authentication information to the authentication manager. In essence, the browser is little 
more than a log-on prompt/dialog box. The PIN is not hidden from the browser. Further, 
the authentication being performed is not for the purpose of determining whether the user 
may run the browser. The browser is already being used by the user. In addition, claim 1 
recites the security manager is configured to: "give authorization to run said application if 
the PIN code of the user matches the registered PIN code." Again, as recited in claim 1 it 
is the application which presents the PIN entry field and provides the request for user 
authentication which is potentially given authorization to run. In contrast, as already 
discussed, the authentication performed in Raduchel does not give authorization to run 
the browser. Raduchel simply discloses an entirely different system than that claimed. 

Accordingly, there is no direct relationship between an application and 
authorization to run the application as recited. The claims recite a direct relationship 
between a particular application and authorization to run the particular application. 
Further, the request for user authentication is supplied "from the application" (i.e., the 
application the user desire to run). Finally, the authorization signal is then given " to said 
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application " to " run said application ." These features are not disclosed by Raduchel as 
suggested. Further, such features are not disclosed or suggested by Patterson. 

For at least the above reasons. Applicant submits neither the disclosed browser nor 
services of Raduchel are equivalent to the application as recited and not all of the features 
of claim 1 are disclosed by the cited art, either singly or in combination. For at least these 
reasons, claim 1 is patentably distinguishable from the cited art and a prima facie case of 
obviousness is not established. As each of claims 4 and 9 include features similar to those 
discussed above, each of claims 4 and 9 are similarly distinguished from the cited art for at 
least the above reasons. 

In addition to the above, the cited art does not disclose a security manager 
configured to "supply information to the application about PIN code entering key- 
pressing operations by the user, wherein the entered PIN code is not supplied to the 
application." First, as already noted above, Raduchel does not disclose the security 
manager supplying information to "said" application as recited. Rather, Raduchel 
discloses returning a permissions type token to the browser. Second, Raduchel includes 
no teaching or suggestion of a security manager supplying information concerning PIN 
code key-pressing operations to the application without the PIN code being supplied to 
the application. These features are nowhere found in the cited art. It is suggested by the 
examiner that these features are disclosed by Raduchel in the following: 

"The authentication manager receives the log-in information and uses 
it to authenticate the user, as shown in FIG. 4. Although various 
embodiments of the authentication manager may vary and could be 
configurable, in one implementation, the authentication manager 
receives a log-in request containing a user name and password (step 
402 in FIG. 4). After receiving this information, the authentication 
manager authenticates the user by accessing the authentication file to 
determine if the user name and password are contained in it (step 404) 
and returns a token that identifies the services that the user may use 
(step 406). Additionally, this token may contain a profile of the user's 
access rights, and when the token is returned to the local computer, it 
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would be included in all further requests from the local computer. 
Returning to FIG. 2, the local computer receives the authentication 
results from the authentication manager and determines if the user was 
authenticated (step 208)." (Raduchel, col. 5, lines 17-34). 

Clearly, the above disclosure does not describe a security manager supplying 
information concerning key-pressing operations to the application. Rather, the remote 
authentication manager receives the complete authentication information from the local 
computer, performs an authentication check, and returns a result (profile, access rights) to 
the local computer. Further, there is no disclosure of providing the recited key-pressing 
information without providing the PIN code. Therefore, for at least these additional 
reasons, each of the independent claims are patentably distinct from the cited art. 

Claims 5 and 6 

Neither of claims 5 nor 6, nor their features, are anywhere addressed in the final 
office action. This fact was also noted by the Applicant in the pre-appeal request for 
review. The additional features recited in claims 5 and 6 are not disclosed by the cited art. 
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Conclusion 

For the foregoing reasons, it is submitted that the Examiner's rejection of claims 
1-11 was improper, and reversal of the examiner's decision is respectfully requested. 

No fees are believed necessary; however, the Commissioner is hereby authorized 
to charge any fees which may be required to Deposit Account No. 501505/5266- 
09100/RDR. 

Respectfully submitted. 



/Rory D. Rankin/ 
Rory D. Rankin 
Reg. No. 47,884 
Attorney for Appellants 



Meyertons, Hood, Kivlin, 

Kowert & Goetzel, P.C. 
P.O. Box 398 
Austin, TX 78767-0398 
(512) 853-8850 

Date: February 5. 2007 
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VIII. CLAIMS APPENDIX 

The claims on appeal are as follows. 

1. (Previously Presented) A system for authenticating a PIN code of a user in an 
interactive information system in order to run an application, the system comprising: 

an input device for entering a PIN code of a user; 
a security manager configured to: 

receive a request for user authentication from the application; 
compare a received PIN code of the user with a registered PIN code, in 

response to said request; 
supply information to the application about PIN code entering key- 
pressing operations by the user, wherein the entered PIN code is not 
supplied to the application; and 
give authorization to run said application if the PIN code of the user 
matches the registered PIN code; 
wherein the application is configured to present a PIN entry field, wherein crypted 
information corresponding to said information about PIN code entering 
key-pressing operations received from the security manager is displayed in 
the PIN entry field. 

2. (Previously Presented) A system according to claim 1 wherein the application 
comprises a television program. 

3. (Previously Presented) A system according to claim 1, wherein the application 
comprises a service provided on a mobile telephone. 

4. (Previously Presented) A method for authenticating a PIN code of a user in an 
interactive information system, in order to run an application, the method comprising: 

receiving a request from a user to run the application; 
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the application presenting a PIN entry field in response to said request; 

a security manager: 

receiving a request for user authentication from the application; 
supplying information to the application about PIN code entering key- 
pressing operations by the user, wherein the entered PIN code is not 
supplied to the application; 
comparing an entered PIN code of the user with a registered PIN code; 
giving authorisation to run said application if the PIN code of the user matches the 
registered PIN code; 

wherein the application is configured to present in the PIN entry field crypted 

information corresponding to the information about PIN code entering key- 
pressing operations received from the security manager. 

5. (Previously Presented) A method according to claim 4, further comprising: 

the application asking the security manager to enter a PIN entry mode; 
checking if keys are pressed by the user; 

responsive to keys being pressed, giving feedback in entering said crypted digits 

in said PIN entry field; , and 
if the user is authenticated by said security manager, giving said authorisation to 

run the application. 

6. (Previously Presented) A method according to any of claims 4 and 5, wherein the 
method further comprises 

the security manager initializing to empty a PIN repertory; 
waiting for a key to be pressed by the user; 

upon occurrence of pressing an ending key, checking if a release occurs; 
checking the entered PIN against the user's PIN; and 
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if the entered PIN matches the user's PIN, authorising the application to run. 

7. (Previously Presented) A method according to any of claims 4 to 6, wherein the 
application comprises a television program. 

8. (Previously Presented) A method according to any of claims 4 to 6, wherein the 
application comprises a service provided on a mobile telephone. 

9. (Previously Presented) A computer readable medium comprising executable 
instructions for authenticating a PIN code of a user in order to run an application, 
wherein the program instructions are operable to: 

receive a request for user authentication from the application; 

supply information to the application about PIN code entering key-pressing 

operations by the user, wherein the entered PIN code is not supplied to the 

application; and 

give authorization to run said application if the PIN code of the user matches the 
registered PIN code; 

wherein the application is configured to present a PIN entry field, wherein crypted 
information corresponding to said information about PIN code entering 
key-pressing operations received from the security manager is displayed in 
the PIN entry field. 

10. (Previously Presented) A computer readable medium according to claim 9, wherein 
the application comprises a television program. 

11. (Previously Presented) A computer readable medium according to claim 9, wherein 
the application comprises a service provided on a mobile telephone. 
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IX. EVIDENCE APPENDIX 

No evidence submitted under 37 CFR §§ 1.130, 1.131 or 1.132 or otherwise 
entered by the Examiner is relied upon in this appeal. 
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X. RELATED PROCEEDINGS APPENDIX 

There are no related proceedings. 
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